Services

About

Asymmetric Security is a company of people who like to help Australian organisations keep themselves safe.
We have the goal of helping to harden the entire Australian market against cyber attackers - putting them out of business, or pushing them into another region.

When it comes down to it we're all about making your life easier and the criminals' lives harder.

Contact Us

This form uses Google Docs to store its results, if you wish to discuss a sensitive topic please indicate so below and we will contact you.

Penetration Testing

We offer penetration testing both as a direct service, and under subcontract to some of the largest security companies in Australia.
Recent projects include:

Web applications - large and small

Secure code review - iOS and Android Apps

Embedded platforms - industrial switches and NAS units

Simulated Spearphishing and Red Team exercises

SCADA … and other weird and wonderful setups requiring custom tooling

We're keen to change the game in terms of penetration testing and provide more value without all of the excess collateral and double handling found in most penetration testing engagements.

Security Consulting

We have provided security review and consultancy services to a number of large Australian companies, ranging from simple firewall reviews through to security architecture design.

Security Development

Our security development service is typically requested by clients who are seeking a security tool that isn't available in the market, or for new projects which require secure development from day one.
Recently deliveries include:

Incident Response

Our incident response services have ranged from workplace issues to malware investigations.
We're all about working with you to discover what really happened. If required, we also have a good working relationship with most Australian law enforcement bodies.

Threat Intelligence

This is where we started out.
We provide intelligence services to many of Australia's large financial institutions and the ASX100. We can identify know who it is targeting you, what their goals are and how you can disrupt them.

We also provide a hybrid Threat Intelligence and Incident Response service wherein we monitor the internet for mention of your internal environment.
We can also identify pivots in infrastructure by your known attackers, so you can be one step ahead of the criminals (and two steps ahead of the media).

Training and Presenting

We've provided training on:

Threat assessment

Threat management

Malware and DDoS tools

Open Source Intelligence

Automating Open Source Intelligence

We also have a great understanding of, (and training material on), the subject of bitcoin investigations.

If you're after training for your organisation on a security topic let us know and we can see what we can do for you.